CVE-2021-27017 - Deserialization of untrusted data

CVSS 3 Base Score:
6.6

Posted On:
February 10, 2021

Assessed Risk Level:
Medium

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release.

Status:

Affected software versions:

Puppet Agent 7.x prior to 7.4.0

Resolved in:

Puppet Agent 7.4.0

← Back to CVE Listings

A Brief Intro to Puppet for (Very) Busy People

Enforcing Better Zero Trust Security with Puppet Enterprise

A Brief Intro to Puppet for (Very) Busy People

Enforcing Better Zero Trust Security with Puppet Enterprise

CVE-2021-27017 - Deserialization of untrusted data

CVSS 3 Base Score:
6.6

Posted On:
February 10, 2021

Assessed Risk Level:
Medium

Status:

Get Started

Puppet

Premium Features

CVE-2021-27017 - Deserialization of untrusted data

CVSS 3 Base Score: 6.6

Posted On: February 10, 2021

Assessed Risk Level: Medium

Status:

CVSS 3 Base Score:
6.6

Posted On:
February 10, 2021

Assessed Risk Level:
Medium